>>Hey, welcome to the cubes coverage of splunk.com 21. I'm licensed Lisa Martin here. I've got some in Demis with me, a VP in APAC at Splunk Simon. Welcome to the program. >>So here we are, unfortunately at another virtual conference, but there has been a tremendous amount of there's an understatement, right? That we've seen in the last 18 months. We've seen this massive distribution of the workforce. We've seen huge increases in the threat landscape. We've seen things like solar winds, ransomware, increasing significantly acceleration and digital transformation. As companies tried to do whatever they could to enable digital workspaces. I wanted to unpack with you, uh, this 20, 21 state of security report that Splunk has. What are some of the key findings? And then we'll dig into some of the things that you're seeing in the APAC region. >>Yeah, look, we're excited about the report. It really highlighted, I think what a lot of organizations are going through. Um, one of the statistics that stood out for me was, um, 75% of infrastructure users are multi-cloud, but expecting to get that these expecting to increase to 87% of customers will be using multicloud environments. So the reason why that's important is the complexity that creates, uh, for cyber professionals in terms of trying to protect and defend, um, becomes exponentially harder with every new iteration or generation of infrastructure that companies consume. Um, most interesting. Um, we actually saw about a third of users or already using three cloud providers, but that is going to grow to 50% of, of customers will grow to being using three cloud providers or more within the next two years. So again, just that, that trend is going to continue. Uh, the leveraging of cloud infrastructures is a core way of businesses digitizing and modernizing. Um, and as cyber professionals, we have to think about how we're going to address that. >>Definitely. One of the things that I've been seeing and hearing in the last 18 months from a security perspective is that organizations say, you know, it's, it's really not a matter of if we get hit with ransomware, it's when, and I was really surprised to see the, that the state of security report found that 70% of security and it leaders worry they're going to be hit by a solar winds style attack. So the security landscape changing dramatically in the last 18 months. >>Yeah, absolutely. I think the, the, the research is feeding back what we were already hearing from the customers, um, around how this is a critical, uh, motion. And I think the one thing that we've seen as well as the board level agenda now, the risk and cyber has, and, uh, an organization's ability to react or recover. Um, when you have an, an event, um, is now becoming a high priority for organizations, we're seeing a lot of increased spending in cybersecurity as this becomes more and more, um, pretty for organizations for breasts. So yeah, the, the, on the ground experiences certainly matching what we're seeing in the research there. Um, and all of that is a data problem, right? Security is a data problem when something happens, how do I, how do I know? Where, how do I know when, how do I know what, and then how do I know what actions to take based upon the data that we need to get? >>So security being a data problem talked about the complexity of the multi-cloud environments, that percentages of organizations that are adopting that now what that trend is moving towards. Also complexity, I can imagine with data volumes only increasing, what are some of the key challenges that APAC organizations specifically are seeing as they are accelerating digital transformation and doing what they can to enable this distributed workforce? >>Yeah. So, so the hybrid multicloud environment you use, I guess, an indicator of increased complexity, I think we often overlook the fact that I think the hybrid world is here to stay as well. So nobody is a hundred percent cloud and nobody's a hundred percent on prem anymore. It's very much an environment now where I need to, um, I need to protect and defend across that entire surface area and increasingly with edge computing. Um, and as we're looking at, uh, organizations pushing, processing out to the edge of their, um, their operations and whether that's a distributed workforce or sensor-based environments, um, that becomes critical as well. We've got organizations like Intel, uh, that use us to basically monitor not only the cyber infrastructure, but the entire customer infrastructure that they're providing the fabric by census of course, environments, where you can imagine that the security becomes even more important. >>So I think that complexity and the data sources that are now being generated and the explosion of that is, is kind of critical. Um, for apex specifically, we saw some interesting trends we saw about 37% of organizations are using data to now support the compliance environments. Um, about 36% are bringing in non-security data. Um, and about 36%, it really started to use AI or machine learning tools to help them in that, that large scale data volume processing, um, that they weren't able to do before. And then lastly, security analytics really is starting to become, uh, a critical tool in the arsenal of cyber professionals with 34% of organizations saying they're already using some form of security analytics to help them address the threat actors. >>Is there a silver lining in terms of the it folks and the security folks becoming better collaborating better? Anything that you've seen in this report? >>Uh, well in the report, but also in the way that we're seeing SOC organizations use tools. Um, so, uh, the orchestration remediation and automation is a big industry trend, particularly when you look at things like implementing zero trust and how you would use that for, um, putting that additional layer of protection around an organization. Um, and that's where the ability to identify using machine learning or AI, uh, trends or events, understand the actions that need to be taken, understand the data sources that help address and remediate those and be able to automate that frees up the time and cyber security professionals. Um, and that's a critical step we're seeing because there's a shortage of skills and that's been an ongoing challenge, not only in Asia Pacific, but I think worldwide, >>Right. It has been a challenge worldwide. I was actually doing some cyber security work in the last month or so. And I read that this is the fifth consecutive year of that cybersecurity skills gap. So definitely a challenge there, but also if you flip the coin and opportunity. So in terms of some of those challenges that you mentioned, what are some of the key things that organizations and APAC can do to confront and combat those security challenges that are no doubt just only going to grow? >>Yeah, so I think, I think it's about, um, visibility, uh, and getting control, uh, and that's where again, data becomes key to that. So making sure you're capturing the right data, making sure that data is available, um, to your professionals, or if you're using a service provider, making sure that data is captured and available to the service providers, because that is increasingly what we see as the critical step to be able to, when something happens, how do you recover what your meantime to remediation, um, as, as the kind of critical motion. And so that's, again, what we could coming back to is security is a data problem. >>Security is a data problem. Got it. I do want to, uh, unpack a little bit some of the visibility challenges. That is one of the things that was identified. You mentioned that with so much complexity, multi-cloud being, uh, as, as hybrid work, something that's going to stay, what are some of the things that organizations can do and how can Splunk help to remove and mitigate those visibility challenges? >>So we've we just another interesting piece of research, um, it's called the state of data innovation report. Um, that really looked at the way organizations that categorize that data and organizations that actually build a data strategy, um, are actually much more prepared to react, uh, to engage and then to leverage that data for competitive differentiation in their markets. Um, and interestingly 33% of APAC organizations particularly rated their usage of data as better, uh, than, um, the industry average. Um, and 54% of APAC organizations already said they're using technologies like observability, which really helps them innovate around the data. Thinking about that next generation of service they're trying to provide. >>Did you see those are great numbers? It's about a third, um, are, are working on implementing technologies 54% were focused on that observability. Did you see any industries in particular that really leading edge there? Of course, every industry being affected by the pandemic, but I'm just curious if there were any, any ones that stood out >>So many great customer examples that we've got, uh, where we see organizations thinking differently about the way they engage their customers as a result of the digital transformation. Um, for me, one of the ones that stands out is Lenovo, um, you know, 50 billion plus multinational company servicing 180 markets around the world, um, when they looked at their observability approach and tried to understand how they were going to approach troubleshooting, um, when they had issues, if you think about the e-commerce experience for their consumers, um, they were able to reduce the, uh, reduce the downtime, um, and improve, um, the remediation time when there were incidents, uh, even though they had a 300% increase in traffic. And so for the ability for an organization to handle that kind of surge in digital, uh, interactions with their customers and do that to have clear visibility, using metrics, traces, and logs, to understanding exactly what's going on across complex, siloed multi, uh, services, uh, environments was, was critical to the Novo success. And, um, you know, not only from a cybersecurity point of view, but also having real time visibility into their infrastructure became critical as they service their customers. >>Right? One of the things I think we learned Simon during the pandemic, one of the many things is that access to real-time data real-time visibility real time, rather than visibility is no longer a nice to have it's. It was something that in the beginning was sort of organizations needing it to survive. Now organizations needing it to thrive it's that, that real-time visibility is really table stakes for organizations in any industry. >>W we, we kind of saw organizations go through three phases. There was the react phase. Then there was the adapt phase. So, you know, reacting was, first of all, kind of keep my people safe. The adapt phase was how am I going to work? And now we're seeing that next generation, which is really the evolve phase, right? Given the pandemic is still well COVID is still with us. Um, whether it's your, most of the countries, which are treating it more as an endemic or whether you're on the number of the countries still on that journey. And you're in Asia Pacific, we see different levels of, of vaccination status, different levels of, uh, companies starting to open up or countries starting to open up their borders and, um, life getting back to the, what is the new normal, um, all of that is still gonna evolve with a different way of working, moving forward, a different way of engaging our customers and our, our, uh, constituents, if you're a public sector, organization and data is underlying all of that. And for that, where we're kind of excited to be helping some of the largest organizations with that across, across the region, >>Did it is absolutely critical. You know, one of the things that we've also, I think observed in the last year and a half is the, the patients or the fuses of people getting smaller and smaller. So for organizations to have that visibility into data so that they can service their customers, whether it be healthcare or financial services or the tech sector for, for example, the access to that data is critical for brand reputation, reducing churn. And of course, ensuring that the customers are getting what they need to from that data. >>Yeah. A hundred percent. Um, gosh, so many examples across the region. One of the ones that jumps to mind is Flinders university, right? When, when they had to go remote, they had to go virtual, um, 25,000 students overnight, um, suddenly needing to be interacting by digital channels. How do you keep them secure? How do you keep them safe? How do you get insights, uh, in terms of the services that they need to, to protect that student population? >>So if you, if you kind of distill this down into data opportunities for organizations, we'll start with APAC, what do you think the top three data opportunities are of security as a data problem? What are the opportunities to combat that for an organization to be really successful? >>So I think, I think visibility is the first one. So making sure we're capturing the data, making sure we're capturing the right data. Um, and so the ability, uh, not only to capture the data, but to time sequence the data so I can actually understand what's happened. And when, um, the second then is, is, uh, control. Um, so ensuring that the right people have access to the right data, but we, we control that in a way that is specific to our organization. Um, and then lastly compliance. Um, and I think we're seeing a lot of new legislation starts coming around critical infrastructure, um, recognizing the importance of the digital infrastructure to the broader economy, um, and making sure that you're compliant with that critical infrastructure kind of requirements and environments as well as then the traditional regulated industries such as healthcare and financial services, um, become critical in that approach. So thinking about those three elements, and then thinking about how do I then use tools like automation and security analytics to really accelerate, um, the capabilities that we have as an organization. >>So observability control compliance, give me the 32nd pitch of how Splunk can help organizations achieve all three of those. >>So observability really is about getting insights into all of your environments. So, uh, it's all about metrics, traces and logs, which is about understanding exactly what's going on with every experience of every digital interaction I have with every customer and the ability to Splunk through that with zero, uh, zero sampling or full fidelity of that data is something we see our customers, particularly Navy, um, security, uh, look for me to it's all about orchestration and analytics. So how do I, how do I get that understanding that, that user behavior understanding the analytics around that, and then how machine learning becomes a critical part of that to help me scale my cyber infrastructure and defend. And then lastly resilience is really the core for all it systems in a digital world. Um, and being able to not only harden deliver resilient services like going over, I was able to do the 300% increase in their web traffic. Um, but also when something does go wrong and be able to remediate quickly become critical as well. >>Right? That quick remediation is because, like I was saying earlier, it's no longer a, if we get hit it's when organizations need to have that resilience baked in. Well, Simon, thank you for joining me, breaking down. Some of those reports what's going on in APAC, some of the trends and also some of the opportunities, security being a data problem, um, and organizations, what they can do to remediate that we appreciate your time. Thanks for having my pleasure for Simon Davies and Lisa Martin. You're watching the cubes coverage of splunk.com 21.